-
Notifications
You must be signed in to change notification settings - Fork 2.3k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Timeout issue #5255
Comments
Seems @ritikchaddha updated template on my advice but you got the idea where is the issue, yet still can be tested on old version of template before this commit projectdiscovery/nuclei-templates@57776fd |
@mastercho |
I'm surprised that you don't know about the case when 90% of your team already know... Yes i can't use raw in my case because payload have such
URLEncode makes payload to not execute so we can't use URLEncode. According to whole PD Template team we can't escape
Then i went and check SQLi Time Based templates who are not using RAW request (and RAW request who dont have |
@mastercho there are over 30 OSS projects with hundreds of issues, so it's understandable that no team member can have context for all issues at all times. To keep it simple and avoid unnecessary back-and-forth, please include all relevant information directly in the issue itself to review instead of referencing offline conversations. About the example you shared, I can see it works by replacing space with id: basic-raw-example
info:
name: Test RAW Template
author: pdteam
severity: info
http:
- raw:
- |
GET /archive?id=1&page_type=category&rewrite=news&subpage_type=post"+AND+(SELECT+5728+FROM+(SELECT(SLEEP(5)))AuDU)--+lafl HTTP/1.1
Host: {{Hostname}}
Origin: {{BaseURL}}
matchers:
- type: word
words:
- "Test is test matcher text"
negative: true If this doesn't work for you, can you share the actual example / template that did not worked with raw format? |
GHSA-r4qv-crh6-rjvj was updated after i tell PD template team about the issue and show the solution, but there is lot more templates which has to be updated with About conversations, i did not share my template on purpose because my messages is ignored and then someone else copy paste my work and being approved in 5 minutes... If you consider Discord as offline conversation then you must not use Slack and Jira too... Lets focus on issue now, if anything once come across on my attention with team, i will contact you on person as you are CTO and we are on same mission to simplify the security process . And if you prefer Discord is not right, will call you on phone (bit intrusive)... |
@mastercho, can you please provide examples or list specific templates you are talking about? In PR #5148, we fixed a bug that caused
Regarding offline communication, I meant private conversations. Public discussions (either on Discord or GitHub) are beneficial for context, ensuring everyone is on the same page. |
Upon your request i went and check on templates which i made with valid targets and have interesting founds For example this template suffer from same error, My second find is if there is direct request to payload we won't get Example template Still if have redirect won't match final destination page response... For some reason not getting I can provide targets for testing whoever from PD contacts me for debug. I think there is some serious issue on DSL because who know how many templates like that is affected right now |
@ehsandeep any update on this, or any more requests from me? |
@mastercho all the templates you listed doesn't have additional timeout that I've added in projectdiscovery/nuclei-templates#10095 along with few other improvements to similar templates. |
Yeah we can do this for RAW requests but these with non RAW requests like was GHSA-r4qv-crh6-rjvj before still can cause this issue, why you delete some templates doe? Also seems redirect issue which i mention is more critical than timeout one |
@mastercho I did mention about why some templates were removed in the PR description, also can you please create separate issue for |
So you will go on update tons of Time Based SQLi templates method instead of fixing in Nuclei? I don't know why you want redirect issue in templates project when is nuclei based issue but ok |
@mastercho for the timeout issue, as I mentioned earlier, custom timeout is not and won't be supported for base format as base format is not suitable for advance use cases, so updating templates is only option and nothing needs to be changed in nuclei. later you mentioned about new issue related to |
Yeah i do understand this, what i meant, to overcome and solve this issue need go and update every SQL Time based template who is done in base format requests into raw requests with added @timeout to make it work, it's a lot of work (unless template bot can do it) then we can close this issue... I'll proceed with redirects issue now on templates project to keep seperate as you said. |
We have already converted all the templates related to SQLI to raw format, so we don't need to convert any, instead create new templates in raw format given base format can not be used. |
Nuclei version: 3.2.8
Current Behavior:
When try to run sql injection time based templates which is not with raw request and don't have
@timeout
in template its getTried to reproduce on localhost instance with custom template and its gets same timeout error and it shouldn't. Tried older version before #5148 and its works. Something might be wrong in PR. Also when debugging in BURP i can see request is not timeout its normal and complete request but for some reason its throws error in nuclei.
Expected Behavior:
To not give runtime error
Steps To Reproduce:
You can try on CVE-2023-6063
The text was updated successfully, but these errors were encountered: